Hi Sashika,
Have you added the proxy port 443 for https connector in
*catalina-server.xml*?
That config needs to be there for the dashboard.
Go to <IS_HOME>/repository/conf/tomcat/catalina-server.xml and add the
proxy port 443 as below.
<Connector protocol="org.apache.coyote.http11.Http11NioProtocol"
port="9443"
proxyPort="443"
Thanks,
Ashen
On Thu, Oct 26, 2017 at 10:56 AM, Sashika Wijesinghe <[email protected]>
wrote:
> Hi Ashen,
>
> The IS clustering guide you pointed out does not contain any information
> to configure the IS dashboard in a cluster setup.
>
> In my scenario, I can log in to the management console successfully but
> the issue occurs when login to the IS dashboard. Could this be due to any
> missing configuration?
>
> Thanks
> Sashika
>
> On Thu, Oct 26, 2017 at 12:35 AM, Ashen Weerathunga <[email protected]>
> wrote:
>
>> Hi Sashika,
>>
>> Can you check with IS 5.4.0 Clustered guide [1].
>> I guess it has the information you need.
>>
>> [1] https://docs.wso2.com/display/IS540/Clustered+Deployment
>>
>> Thanks,
>> Ashen
>>
>> On Wed, Oct 25, 2017 at 5:34 PM, Asela Pathberiya <[email protected]> wrote:
>>
>>>
>>>
>>> On Tue, Oct 24, 2017 at 5:41 PM, Sashika Wijesinghe <[email protected]>
>>> wrote:
>>>
>>>> Hi All,
>>>>
>>>> We have configured two IS nodes fronted by Nginx and the site.json with
>>>> server host details as below.
>>>>
>>>> {
>>>> "proxy" : {
>>>> "proxyHost" : "is.dev.wso2.org",
>>>> "proxyHTTPSPort" : "443",
>>>> "proxyContextPath" : "",
>>>> "servicePath" : "/services"
>>>> }
>>>> }
>>>>
>>>>
>>>> When I log in to the Management Console with the admin user,
>>>> authentication was successful but failed to login to the IS Dashboard with
>>>> admin user or any user who have permission to the IS Dashboard login.
>>>>
>>>> Following is the authentication exception logged in the terminal.
>>>>
>>>> Any suggestion to solve this issue is highly appreciated.
>>>>
>>>
>>> Don't we have a doc on configuring WSO2IS with Nginx ?
>>>
>>> Thanks,
>>> Asela.
>>>
>>>>
>>>>
>>>> TID: [-1234] [] [2017-10-24 05:28:50,683] ERROR
>>>> {org.wso2.carbon.identity.authenticator.saml2.sso.SAML2SSOAuthenticator}
>>>> - Authentication Request is rejected. SAMLResponse AudienceRestriction
>>>> validation failed.
>>>> TID: [-1] [] [2017-10-24 05:28:50,683] WARN
>>>> {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} -
>>>> Failed Administrator login attempt '[email protected][-1]' at
>>>> [2017-10-24 05:28:50,683+0000]
>>>> TID: [-1234] [] [2017-10-24 05:28:50,751] WARN
>>>> {org.wso2.carbon.server.admin.module.handler.AuthenticationHandler} -
>>>> Illegal access attempt at [2017-10-24 05:28:50,0751] from IP address
>>>> 192.168.57.251 while trying to authenticate access to service
>>>> WorkflowImplAdminService
>>>>
>>>> TID: [-1] [] [2017-10-24 05:28:49,939] INFO
>>>> {org.wso2.carbon.core.clustering.hazelcast.HazelcastClusterMessageListener}
>>>> - Received ClusteringMessage: org.wso2.carbon.identity.entit
>>>> lement.PolicyStatusClusterMessage@d47e9b84
>>>> TID: [-1234] [] [2017-10-24 05:28:50,778] INFO {
>>>> org.apache.axis2.transport.http.HTTPSender} - Unable to sendViaPost
>>>> to url[https://is.dev.wso2.org/services/WorkflowImplAdminServic
>>>> e.WorkflowImplAdminServiceHttpsSoap11Endpoint/]
>>>> org.apache.axis2.AxisFault: Transport error: 401 Error: Unauthorized
>>>> at org.apache.axis2.transport.http.HTTPSender.handleResponse(HT
>>>> TPSender.java:326)
>>>> at org.apache.axis2.transport.http.HTTPSender.sendViaPost(HTTPS
>>>> ender.java:196)
>>>> at org.apache.axis2.transport.http.HTTPSender.send(HTTPSender.java:77)
>>>> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.w
>>>> riteMessageWithCommons(CommonsHTTPTransportSender.java:451)
>>>> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.i
>>>> nvoke(CommonsHTTPTransportSender.java:278)
>>>> at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:442)
>>>> at org.apache.axis2.description.OutInAxisOperationClient.send(O
>>>> utInAxisOperation.java:430)
>>>> at org.apache.axis2.description.OutInAxisOperationClient.execut
>>>> eImpl(OutInAxisOperation.java:225)
>>>> at org.apache.axis2.client.OperationClient.execute(OperationCli
>>>> ent.java:149)
>>>> at org.apache.axis2.client.ServiceClient.sendReceive(ServiceCli
>>>> ent.java:554)
>>>> at org.jaggeryjs.modules.ws.WSRequestHostObject.jsFunction_send
>>>> (WSRequestHostObject.java:379)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAcce
>>>> ssorImpl.java:62)
>>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMe
>>>> thodAccessorImpl.java:43)
>>>> at java.lang.reflect.Method.invoke(Method.java:498)
>>>> at org.mozilla.javascript.MemberBox.invoke(MemberBox.java:126)
>>>> at org.mozilla.javascript.FunctionObject.call(FunctionObject.java:386)
>>>> at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime
>>>> .java:32)
>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c
>>>> _getProfileList_3(/dashboard/controllers/login-logout/SAML2S
>>>> SOAuthenticationClient.jag:98)
>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca
>>>> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticatio
>>>> nClient.jag)
>>>> at org.mozilla.javascript.optimizer.OptRuntime.callName0(OptRun
>>>> time.java:74)
>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c
>>>> _getBPSSessions_2(/dashboard/controllers/login-logout/SAML2S
>>>> SOAuthenticationClient.jag:43)
>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca
>>>> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticatio
>>>> nClient.jag)
>>>> at org.mozilla.javascript.optimizer.OptRuntime.callName(OptRunt
>>>> ime.java:63)
>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c
>>>> _login_1(/dashboard/controllers/login-logout/SAML2SSOAuthent
>>>> icationClient.jag:34)
>>>> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca
>>>> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticatio
>>>> nClient.jag)
>>>> at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime
>>>> .java:32)
>>>> at org.jaggeryjs.rhino.dashboard.c6._c_script_0(/dashboard//acs.jag:67)
>>>> at org.jaggeryjs.rhino.dashboard.c6.call(/dashboard//acs.jag)
>>>> at org.mozilla.javascript.ContextFactory.doTopCall(ContextFacto
>>>> ry.java:394)
>>>> at org.mozilla.javascript.ScriptRuntime.doTopCall(ScriptRuntime
>>>> .java:3091)
>>>> at org.jaggeryjs.rhino.dashboard.c6.call(/dashboard//acs.jag)
>>>> at org.jaggeryjs.rhino.dashboard.c6.exec(/dashboard//acs.jag)
>>>> at org.jaggeryjs.scriptengine.engine.RhinoEngine.execScript(Rhi
>>>> noEngine.java:567)
>>>> at org.jaggeryjs.scriptengine.engine.RhinoEngine.exec(RhinoEngi
>>>> ne.java:273)
>>>> at org.jaggeryjs.jaggery.core.manager.WebAppManager.exec(WebApp
>>>> Manager.java:588)
>>>> at org.jaggeryjs.jaggery.core.manager.WebAppManager.execute(Web
>>>> AppManager.java:508)
>>>> at org.jaggeryjs.jaggery.core.JaggeryServlet.doPost(JaggeryServ
>>>> let.java:29)
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:650)
>>>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:731)
>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi
>>>> lter(ApplicationFilterChain.java:303)
>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App
>>>> licationFilterChain.java:208)
>>>> at org.apache.catalina.core.ApplicationDispatcher.invoke(Applic
>>>> ationDispatcher.java:743)
>>>> at org.apache.catalina.core.ApplicationDispatcher.processReques
>>>> t(ApplicationDispatcher.java:485)
>>>> at org.apache.catalina.core.ApplicationDispatcher.doForward(App
>>>> licationDispatcher.java:377)
>>>> at org.apache.catalina.core.ApplicationDispatcher.forward(Appli
>>>> cationDispatcher.java:337)
>>>> at org.jaggeryjs.jaggery.core.JaggeryFilter.doFilter(JaggeryFil
>>>> ter.java:21)
>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi
>>>> lter(ApplicationFilterChain.java:241)
>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App
>>>> licationFilterChain.java:208)
>>>> at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilte
>>>> r.java:52)
>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi
>>>> lter(ApplicationFilterChain.java:241)
>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App
>>>> licationFilterChain.java:208)
>>>> at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilte
>>>> r(HttpHeaderSecurityFilter.java:124)
>>>> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi
>>>> lter(ApplicationFilterChain.java:241)
>>>> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App
>>>> licationFilterChain.java:208)
>>>> at org.apache.catalina.core.StandardWrapperValve.invoke(Standar
>>>> dWrapperValve.java:219)
>>>> at org.apache.catalina.core.StandardContextValve.invoke(Standar
>>>> dContextValve.java:110)
>>>> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(A
>>>> uthenticatorBase.java:506)
>>>> at org.apache.catalina.core.StandardHostValve.invoke(StandardHo
>>>> stValve.java:169)
>>>> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorRepo
>>>> rtValve.java:103)
>>>> at org.wso2.carbon.identity.context.rewrite.valve.TenantContext
>>>> RewriteValve.invoke(TenantContextRewriteValve.java:80)
>>>> at org.wso2.carbon.identity.authz.valve.AuthorizationValve.invo
>>>> ke(AuthorizationValve.java:91)
>>>> at org.wso2.carbon.identity.auth.valve.AuthenticationValve.invo
>>>> ke(AuthenticationValve.java:60)
>>>> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInv
>>>> ocation(CompositeValve.java:99)
>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve$1.invoke
>>>> (CarbonTomcatValve.java:47)
>>>> at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke(Tena
>>>> ntLazyLoaderValve.java:57)
>>>> at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invok
>>>> eValves(TomcatValveContainer.java:47)
>>>> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(Comp
>>>> ositeValve.java:62)
>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetection
>>>> Valve.invoke(CarbonStuckThreadDetectionValve.java:159)
>>>> at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogVa
>>>> lve.java:962)
>>>> at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve.
>>>> invoke(CarbonContextCreatorValve.java:57)
>>>> at org.apache.catalina.core.StandardEngineValve.invoke(Standard
>>>> EngineValve.java:116)
>>>> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAd
>>>> apter.java:445)
>>>> at org.apache.coyote.http11.AbstractHttp11Processor.process(Abs
>>>> tractHttp11Processor.java:1115)
>>>> at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler
>>>> .process(AbstractProtocol.java:637)
>>>> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun
>>>> (NioEndpoint.java:1775)
>>>> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(N
>>>> ioEndpoint.java:1734)
>>>> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPool
>>>> Executor.java:1142)
>>>> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoo
>>>> lExecutor.java:617)
>>>> at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.r
>>>> un(TaskThread.java:61)
>>>> at java.lang.Thread.run(Thread.java:748)
>>>> TID: [-1234] [] [2017-10-24 05:28:50,782] INFO
>>>> {JAGGERY.controllers.login-logout.SAML2SSOAuthenticationClient:jag} -
>>>> JavaException: org.jaggeryjs.scriptengine.exceptions.ScriptException:
>>>> Transport error: 401 Error: Unauthorized
>>>>
>>>> Thank You
>>>>
>>>> --
>>>>
>>>> *Sashika WijesingheSoftware Engineer - QA Team*
>>>> Mobile : +94 (0) 774537487
>>>> [email protected]
>>>>
>>>
>>>
>>>
>>> --
>>> Thanks & Regards,
>>> Asela
>>>
>>> ATL
>>> Mobile : +94 777 625 933 <+94%2077%20762%205933>
>>> +358 449 228 979
>>>
>>> http://soasecurity.org/
>>> http://xacmlinfo.org/
>>>
>>
>>
>>
>> --
>> *Ashen Weerathunga*
>> Software Engineer
>> WSO2 Inc.: http://wso2.com
>> lean.enterprise.middleware
>>
>> Email: [email protected]
>> Mobile: +94716042995 <94716042995>
>> LinkedIn: *http://lk.linkedin.com/in/ashenweerathunga
>> <http://lk.linkedin.com/in/ashenweerathunga>*
>>
>> <http://wso2.com/signature>
>>
>
>
>
> --
>
> *Sashika WijesingheSoftware Engineer - QA Team*
> Mobile : +94 (0) 774537487
> [email protected]
>
--
*Ashen Weerathunga*
Software Engineer
WSO2 Inc.: http://wso2.com
lean.enterprise.middleware
Email: [email protected]
Mobile: +94716042995 <94716042995>
LinkedIn: *http://lk.linkedin.com/in/ashenweerathunga
<http://lk.linkedin.com/in/ashenweerathunga>*
<http://wso2.com/signature>
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev
